Package: openssh-client Version: 4.2p1-5 Severity: important File: /etc/ssh/ssh_config
There was also a really messy diff about /etc/ssh/moduli. --- /etc/ssh/ssh_config 2004-03-10 06:29:56.000000000 -0500 +++ /etc/ssh/ssh_config.dpkg-new 2005-10-07 08:11:41.000000000 -0400 @@ -1,4 +1,4 @@ -# $OpenBSD: ssh_config,v 1.19 2003/08/13 08:46:31 markus Exp $ +# $OpenBSD: ssh_config,v 1.20 2005/01/28 09:45:53 dtucker Exp $ # This is the ssh client system-wide configuration file. See # ssh_config(5) for more information. This file provides defaults for @@ -13,9 +13,11 @@ # Thus, host-specific definitions should be at the beginning of the # configuration file, and defaults at the end. -# Site-wide defaults for various options +# Site-wide defaults for some commonly used options. For a comprehensive +# list of available options, their meanings and defaults, please see the +# ssh_config(5) man page. -# Host * +Host * # ForwardAgent no # ForwardX11 no # ForwardX11Trusted yes @@ -36,3 +38,5 @@ # Cipher 3des # Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc # EscapeChar ~ + SendEnv LANG LC_* + HashKnownHosts yes --- /etc/default/ssh 2003-04-01 18:57:35.000000000 -0500 +++ /etc/default/ssh.dpkg-new 2005-10-07 08:11:41.000000000 -0400 @@ -1,4 +1,4 @@ -# Default settings for ssh. This file is sourced by /bin/sh from +# Default settings for openssh-server. This file is sourced by /bin/sh from # /etc/init.d/ssh. # Options to pass to sshd --- /etc/pam.d/ssh 2004-03-10 06:29:05.000000000 -0500 +++ /etc/pam.d/ssh.dpkg-new 2005-10-07 08:09:57.000000000 -0400 @@ -1,8 +1,5 @@ # PAM configuration for the Secure Shell service -# Disallow non-root logins when /etc/nologin exists. -auth required pam_nologin.so - # Read environment variables from /etc/environment and # /etc/security/pam_env.conf. auth required pam_env.so # [1] @@ -25,5 +22,8 @@ # Set up user limits from /etc/security/limits.conf. session required pam_limits.so +# Set up SELinux capabilities (need modified pam) +# session required pam_selinux.so multiple + # Standard Un*x password updating. @include common-password -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
